For starters, get rid of the IPv6 rules. You don't have IPv6 enabled on the LAN interfaces and unless your clients are actually using IPv6, these rules don't do anything.
Secondly, are you applying any group policies to your users that is not being shown in your screenshots? It is possible for Group Policy-based firewall rules to overrule default firewall rules.
Lastly, when you say "communication" between the hosts.... are you talking about TCP and UDP, or just ping? I ask because when you set "any" in MX firewall rules, you would assume that means "TCP, UDP and ICMP", but that is not the case. "Any" only blocks TCP and UDP, but allows ICMP to pass through. If you want to block ICMP, you need to create two more rules that specifically block ICMP.
